Detections
Analytics

CIS Microsoft 365 Foundations E5 L1 v2.0.0

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS Microsoft 365 Foundations E5 L1 v2.0.0

Updated: 12/4/2023

Authority: CIS

Plugin: microsoft_azure

Revision: 1.1

Estimated Item Count: 8

Audit Items

DescriptionCategories
3.5 Ensure DLP policies are enabled for Microsoft Teams
4.6 Ensure that an anti-phishing policy has been created
4.12 Ensure Priority account protection is enabled and configured
4.13 Ensure Priority accounts have 'Strict protection' presets applied
5.1.1 Ensure 'Access reviews' for Guest Users are configured
5.1.2 Ensure 'Access reviews' for high privileged Azure AD roles are configured
5.4 Ensure the Azure AD 'Risky sign-ins' report is reviewed at least weekly
5.12 Ensure the spoofed domains report is reviewed weekly